Try looking at the network requests that are getting 403s in your browser debugger. They'll usually have a message in the response that gives clues as to what permissions are missing and needed.
In which case the issue is almost certainly with your role mapping to the indices_viewer role. Tat role is correctly set up to grant read access to all indices, but it doesn't look like your users are being assigned the role.
So it looks like the roles mapping is not working. Is it possible to see their roles from my account? GET /_security/_authenticate/ doesn't work from my account as I can only see my permissions.
I confirmed the user are getting indices_viewer but still cannot see any indices or dashboard(cluster health dashboard for instance). So it looks like this is role permission rather?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.